There is a possible DoS vulnerability in the multipart parser in Rack prior to 2.0.6. Specially crafted requests can cause the multipart parser to enter a pathological state, causing the parser to use CPU resources disproportionate to the request size.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
rack project rack 2.0.5 |
||
rack project rack 2.0.4 |